Ticket #700 (closed Förbättring: worksforme)
SPF-record
| Reported by: | Zash | Owned by: | Zash |
|---|---|---|---|
| Priority: | major | Milestone: | |
| Component: | Ideer | Keywords: | |
| Cc: |
Description (last modified by sikevux) (diff)
SPF är en DNS-grej som anger vilka servrar som har tillåtelse att skicka mail från en viss domän. Mer info på Wikipedia.
Exempel:
piratpartiet.se. 3600 IN TXT "v=spf1 mx -all"
Detta funkar utmärkt om man har en server som hanterar både inkommande och utgående mail.
Man kan även ha ~all istället för -all på slutet under en testperiod. Då kommer servrar som kontrollerar detta att klaga lite men inte blockera helt.
Change History
comment:2 Changed 14 years ago by Zash
- Owner changed from Richie to Zash
- Status changed from new to accepted
comment:3 Changed 14 years ago by Zash
- Status changed from accepted to closed
- Resolution set to fixed
~$ dig txt piratpartiet.se ; <<>> DiG 9.6.1-P2 <<>> txt piratpartiet.se ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47585 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;piratpartiet.se. IN TXT ;; ANSWER SECTION: piratpartiet.se. 3600 IN TXT "v=spf1 a mx ~all" ;; Query time: 2015 msec ;; SERVER: 85.11.1.11#53(85.11.1.11) ;; WHEN: Wed Oct 20 19:52:06 2010 ;; MSG SIZE rcvd: 62
comment:4 Changed 14 years ago by Zash
Received-SPF: Pass (sender SPF authorized) identity=mailfrom; client-ip=79.136.113.37; helo=mail.piratpartiet.se; envelope-from=no-reply@piratpartiet.se; receiver=<min epost>
comment:5 Changed 14 years ago by Zash
- Status changed from closed to reopened
- Resolution fixed deleted
comment:6 Changed 12 years ago by sikevux
- Status changed from reopened to closed
- Resolution set to worksforme
- Description modified (diff)
$ dig txt piratpartiet.se ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6_3.3 <<>> txt piratpartiet.se ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 27767 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;piratpartiet.se. IN TXT ;; ANSWER SECTION: piratpartiet.se. 3600 IN TXT "v=spf1 a mx a:pirateweb.net ip4:194.14.56.227 ip4:194.14.56.216 ip4:194.14.56.221 ip4:194.14.56.210 ip4:194.14.56.156 ~all" ;; Query time: 244 msec ;; SERVER: 10.8.0.1#53(10.8.0.1) ;; WHEN: Sat Oct 6 13:59:48 2012 ;; MSG SIZE rcvd: 168
$ dig spf piratpartiet.se ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6_3.3 <<>> spf piratpartiet.se ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18499 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;piratpartiet.se. IN SPF ;; AUTHORITY SECTION: piratpartiet.se. 60 IN SOA ns1.piratpartiet.se. drift.piratpartiet.se. 2012092601 1200 300 1209600 60 ;; Query time: 97 msec ;; SERVER: 10.8.0.1#53(10.8.0.1) ;; WHEN: Sat Oct 6 14:00:44 2012 ;; MSG SIZE rcvd: 79
Note: See
TracTickets for help on using
tickets.
Värt att notera är att många funktionärer använder gmail och låter mailen skickas av gmails egna servrar.
Tycka vad man vill om det, men ska det löpe problemfritt bör man nog i SPF-records även godkänna gmails servrar.
(Sen, egentligen borde man inte köra genom gmail, och om man ändå gör det borde man låta dem skicka utgående mail genom PPs smtp-server. Men, ärligt talat känns det tungrott att få folk å ändra)